Official Website

Dump Packet across operating systems

Windows (Windows 7/10/11, Windows Server)

  1. Download Windows x64 Installer or PortableApps version from Wireshark's official website.

  2. Run Wireshark and select main Interface (typically Ethernet) to start packet capture.

  1. Stop capture immediately when anomaly is detected.

  1. Save and provide capture file to technical staff for investigation.

Linux (Debian, Ubuntu)

  1. Install tcpdump using apt package manager: apt install tcpdump

  1. Identify main Interface using ip addr (e.g., eth0)

  1. Start capture: tcpdump -i <Interface> -s 65535 -w output.pcap

Press Ctrl + C to stop when anomaly occurs, provide output.pcap file with timestamp.

PreviousPort / Service LimitNextPerform packet capture across operating systems

Last updated